Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A system for decrypting encrypted data comprising: a first user device; a second user device; and a data storage server coupled to the first and second user devices and comprising a server processor and server memory cooperating therewith to store encrypted data in the server memory, communicate a portion of the encrypted data to the first user device, generate an access code for decrypting the portion of the encrypted data, and communicate the access code to the second user device; the first user device comprising a first device processor and a first device display coupled thereto, the first device processor being configured to display on the first device display a visual representation of the portion of the encrypted data; the second user device comprising a second device processor and second device display coupled to the second device processor, the second device processor configured to acquire the visual representation of the portion of the encrypted data from the first device display, obtain the portion of the encrypted data, decrypt the portion of the encrypted data based upon the access code and the visual representation, and display the decrypted portion of the encrypted data on the second device display.
A system for securely decrypting encrypted data involves multiple devices and a server. The system addresses the challenge of securely sharing and decrypting data between users without exposing decryption keys or sensitive information. The system includes a first user device, a second user device, and a data storage server. The server stores encrypted data and communicates a portion of it to the first user device. The server also generates an access code for decrypting that portion and sends the code to the second user device. The first user device displays a visual representation of the encrypted data portion on its screen. The second user device captures this visual representation, uses it alongside the access code to decrypt the data, and then displays the decrypted content. This approach ensures that the decryption process relies on both the access code and the visual representation, enhancing security by distributing the necessary components across different devices. The system is designed to prevent unauthorized access while allowing authorized users to decrypt and view the data efficiently.
2. The system of claim 1 wherein the second user device further comprises a camera cooperating with the second device processor to acquire the visual representation of the portion of the encrypted data from the first device display.
A system for secure data sharing involves a first user device and a second user device. The first device includes a processor that encrypts data and displays a visual representation of the encrypted data on its display. The second user device includes a processor and a camera. The camera captures the visual representation of the encrypted data from the first device's display. The second device processor then decrypts the captured visual representation to reconstruct the original data. This system enables secure data transfer between devices without direct wired or wireless communication, using visual encoding and decoding to maintain confidentiality. The visual representation may include patterns, codes, or other visual elements that encode the encrypted data, which the second device's camera and processor interpret to recover the information. This approach is useful in environments where traditional data transfer methods are restricted or insecure, providing a method for secure exchange of sensitive information.
3. The system of claim 1 wherein the first user device has a unique device identifier associated therewith; and wherein the second device processor is configured to decrypt the portion of the encrypted data based upon the unique device identifier.
A system for secure data sharing between devices involves a first user device and a second device with processing capabilities. The first user device generates encrypted data, which is then transmitted to the second device. The encrypted data includes a portion that is selectively accessible based on a unique device identifier associated with the first user device. The second device processes the encrypted data and decrypts the portion using the unique device identifier, enabling controlled access to the data. This approach ensures that only authorized devices, identified by their unique identifiers, can access specific portions of the encrypted data, enhancing security in data transmission and sharing. The system may also include additional features such as authentication mechanisms, encryption protocols, and data integrity checks to further secure the communication between devices. The unique device identifier serves as a key for decryption, ensuring that only the intended recipient device can access the protected data portion. This method is particularly useful in scenarios where secure and selective data sharing is required, such as in financial transactions, healthcare data exchange, or confidential communications.
4. The system of claim 3 wherein the data storage server is configured to communicate the unique device identifier to the second user device.
A system for secure data communication involves a data storage server that manages access to stored data. The server includes a processor and memory storing instructions for generating and managing unique device identifiers for user devices. These identifiers are used to authenticate and authorize devices before granting access to stored data. The system ensures that only authorized devices can retrieve or modify data, enhancing security. The server is also configured to communicate the unique device identifier to a second user device, enabling secure data sharing or synchronization between devices. This prevents unauthorized access and ensures data integrity across multiple devices. The system may include additional features such as encryption, access control policies, and audit logging to further secure data transactions. The unique device identifiers are dynamically generated and updated to mitigate risks associated with static identifiers. This approach is particularly useful in environments where multiple users or devices need secure access to shared data, such as cloud storage, enterprise systems, or collaborative platforms. The system addresses the problem of unauthorized data access by enforcing strict authentication and authorization mechanisms at the device level.
5. The system of claim 1 wherein the first device processor is configured to communicate an encryption key to the second user device; and wherein the second device processor is configured to decrypt the portion of the encrypted data based upon the encryption key.
A system enables secure data sharing between devices by encrypting data on a first device and decrypting it on a second device. The first device includes a processor that encrypts a portion of data and communicates an encryption key to the second device. The second device includes a processor that decrypts the encrypted data portion using the received encryption key. This allows secure transmission and access to encrypted data between devices, ensuring confidentiality during data exchange. The system addresses the need for secure data sharing in environments where unauthorized access to transmitted data is a concern. The encryption and decryption processes are performed locally on each device, reducing reliance on external servers for key management. The system may be used in applications such as secure messaging, file sharing, or collaborative editing where data privacy is critical. The encryption key is transmitted separately from the encrypted data, enhancing security by preventing unauthorized parties from accessing both the key and the encrypted data simultaneously. The system may also include additional features such as authentication mechanisms to verify the identity of the devices involved in the data exchange.
6. The system of claim 1 wherein the first device processor is configured to determine a relative proximity of the first user device to the second user device, and when within a threshold distance, display on the first device display the visual representation of the portion of the encrypted data.
This invention relates to secure data sharing between user devices based on proximity. The system addresses the challenge of securely transmitting and displaying sensitive information only when authorized devices are physically close to each other, preventing unauthorized access during transit or storage. The system includes at least two user devices, each with a processor, display, and communication interface. The first device processor determines the relative proximity of the first device to the second device using signals exchanged between the devices. When the devices are within a predefined threshold distance, the first device processor decrypts a portion of encrypted data stored locally or received from the second device and displays a visual representation of that portion on the first device display. The second device may similarly decrypt and display its portion of the data when within the threshold distance. The system ensures that sensitive data remains encrypted and inaccessible unless the authorized devices are in close proximity, enhancing security for confidential information sharing. The proximity-based decryption and display mechanism prevents unauthorized access to the data when devices are separated, addressing risks associated with data interception or device theft. The system may use various wireless communication protocols, such as Bluetooth or Wi-Fi, to measure distance and establish secure connections. The threshold distance can be dynamically adjusted based on environmental factors or user preferences. This approach is particularly useful for applications requiring high-security data sharing, such as financial transactions, medical records, or classified communications.
7. The system of claim 1 wherein the first user device comprises a volatile memory coupled to the first device processor for storing the portion of the encrypted data; and wherein the second user device comprises a volatile memory coupled to the second device processor for storing the visual representation of the portion of the encrypted data.
This invention relates to a secure data sharing system involving multiple user devices. The system addresses the challenge of securely transmitting and displaying encrypted data between devices while minimizing storage requirements. The primary system includes at least two user devices, each with a processor and a display. The first user device encrypts a portion of data and transmits it to the second user device. The second device then generates a visual representation of the encrypted data for display. To enhance security and efficiency, the first user device includes a volatile memory coupled to its processor for temporarily storing the encrypted data portion. Similarly, the second user device includes a volatile memory coupled to its processor for temporarily storing the visual representation of the encrypted data. This ensures that sensitive data is not permanently stored on either device, reducing the risk of unauthorized access. The system leverages volatile memory to handle encrypted data and its visual representations, ensuring that the data is only retained in memory while actively being processed or displayed. This approach improves security by preventing long-term storage of sensitive information on user devices.
8. The system of claim 1 wherein the encrypted data comprises a plurality of encrypted data files; and wherein the data storage server is configured to communicate a portion of a given one of the plurality of encrypted data files to the first user device.
A system for secure data storage and retrieval involves encrypting data files and distributing them across a network. The system includes a data storage server that stores encrypted data files and communicates with user devices. The encrypted data comprises multiple encrypted data files, and the storage server selectively transmits only a portion of a given encrypted data file to a first user device. This selective transmission allows for efficient data access while maintaining security. The system ensures that only authorized users can retrieve and decrypt the data, preventing unauthorized access. The storage server manages the encrypted files, ensuring that data integrity and confidentiality are maintained throughout storage and transmission. The selective transmission of portions of encrypted files reduces bandwidth usage and improves performance, particularly in scenarios where only partial data retrieval is required. The system may also include additional features such as authentication mechanisms, encryption key management, and access control policies to further enhance security. The overall design focuses on balancing security, efficiency, and usability in data storage and retrieval operations.
9. The system of claim 1 wherein the visual representation comprises one of a quick response (QR) code and an arbitrary binary representation.
A system generates and displays a visual representation, such as a quick response (QR) code or an arbitrary binary representation, to facilitate data transmission or identification. The system includes a processor and a display device. The processor generates the visual representation based on input data, which may include encoded information, binary patterns, or other structured data. The display device renders the visual representation for optical scanning or machine-readable interpretation. The visual representation can be dynamically updated to reflect changes in the input data or user interactions. The system may also include input mechanisms to capture data for encoding into the visual representation. The visual representation is designed to be quickly and accurately decoded by optical sensors or cameras, ensuring reliable data transfer or identification in various applications, such as authentication, inventory tracking, or communication protocols. The system optimizes the visual representation for clarity and error correction, enhancing robustness in different environmental conditions.
10. The system of claim 1 wherein the server processor is configured to communicate the portion of the encrypted data to the first user device based upon an authentication with the first user device.
Data storage and retrieval systems. The problem addressed is securely transmitting encrypted data segments to authorized user devices. A server processor is configured to send a segment of encrypted data to a first user device. This transmission is contingent upon successfully authenticating the first user device. The authentication process ensures that only legitimate devices receive portions of the encrypted data.
11. The system of claim 1 wherein the server processor is configured to communicate the access code to the second user device based upon an authentication with the second user device.
A system for secure access control involves a server processor that generates and manages access codes for user devices. The system includes a first user device that requests an access code from the server, which then generates and communicates the access code to the first user device. The access code is used to grant access to a restricted resource or service. The server processor is also configured to communicate the access code to a second user device based on an authentication process with the second user device. This authentication ensures that only authorized devices receive the access code, enhancing security. The system may include additional features such as verifying the identity of the second user device before transmitting the access code, ensuring that the access code is only shared with trusted devices. The server processor may also track and log access attempts, providing an audit trail for security monitoring. The system is designed to prevent unauthorized access by requiring proper authentication before sharing access codes between devices.
12. A method of decrypting encrypted data in a system comprising a first user device, a second user device, and a data storage server coupled to the first and second user devices and configured to store encrypted data in a server memory, the method comprising: using the data storage server to communicate a portion of the encrypted data to the first user device to cause the first user device to display on a first device display a visual representation of the portion of the encrypted data, generate an access code for decrypting the portion of the encrypted data, and communicate the access code to the second user device to cause the second user device to, upon acquisition of the visual representation of the portion of the encrypted data from the first device display, obtain the portion of the encrypted data, decrypt the portion of the encrypted data based upon the access code and the visual representation, and display the decrypted portion of the encrypted data on a second device display.
This invention relates to a secure data decryption system involving multiple user devices and a data storage server. The system addresses the challenge of securely sharing and decrypting encrypted data between devices while minimizing exposure of decryption keys. The method involves a first user device receiving a portion of encrypted data from the server and displaying a visual representation of it. The first device generates an access code for decrypting this portion and sends the code to a second user device. The second device, upon capturing the visual representation (e.g., via camera or screen capture), uses the access code and the visual data to decrypt and display the decrypted content. This approach leverages visual data as part of the decryption process, reducing the need for direct key transmission and enhancing security. The system ensures that decryption requires both the access code and the visual representation, preventing unauthorized access if either component is compromised. The method is particularly useful in scenarios where secure data sharing is required between trusted devices, such as in collaborative work environments or secure communication systems.
13. The method of claim 12 wherein the visual representation of the portion of the encrypted data is acquired from the display of the first user device using a camera.
A method for securely sharing encrypted data between devices involves capturing a visual representation of encrypted data displayed on a first user device using a camera of a second user device. The encrypted data is displayed as a visual code, such as a QR code or bar code, on the first device's screen. The second device's camera scans this visual code to acquire the encrypted data without requiring direct data transmission between the devices. This approach ensures secure data transfer by leveraging visual encoding and optical capture, reducing reliance on network connectivity or direct device pairing. The method may include additional steps such as decrypting the acquired data on the second device using a shared key or authentication mechanism. The visual representation may be dynamically generated to include additional security features, such as time-limited validity or device-specific identifiers. This technique is particularly useful in environments where wireless communication is restricted or unreliable, providing a secure and user-friendly alternative for data sharing.
14. The method of claim 12 wherein the first user device has a unique device identifier associated therewith; wherein the second user device decrypts the portion of the encrypted data based upon the unique device identifier; and wherein using the data storage server comprises using the data storage server to communicate the unique device identifier to the second user device.
This invention relates to secure data sharing between user devices using a data storage server. The problem addressed is ensuring that encrypted data can only be decrypted by authorized devices, preventing unauthorized access. The method involves a first user device encrypting data and storing it on a data storage server. The encrypted data is divided into portions, with at least one portion encrypted using a unique device identifier associated with a second user device. The second user device retrieves the encrypted data from the server and decrypts the portion using its unique device identifier. The data storage server facilitates this process by communicating the unique device identifier to the second user device, enabling selective decryption. This ensures that only the intended recipient device can access the decrypted data, enhancing security in data sharing. The unique device identifier acts as a decryption key, ensuring that only the second user device can properly decrypt the portion of the data encrypted with its identifier. This method is particularly useful in scenarios where secure, device-specific data sharing is required, such as in enterprise environments or secure communication systems.
15. The method of claim 12 wherein the encrypted data comprises a plurality of encrypted data files; and wherein using the data storage server comprises using the data storage server to communicate a portion of a given one of the plurality of encrypted data files to the first user device.
This invention relates to secure data storage and retrieval systems, specifically addressing challenges in managing encrypted data across distributed storage servers. The system enables users to store and access encrypted data files while maintaining privacy and security. The method involves a data storage server that stores encrypted data files and communicates portions of these files to user devices upon request. The encrypted data files are divided into segments, allowing selective retrieval of specific portions without exposing the entire file. This approach enhances efficiency and security by minimizing data exposure during transmission and storage. The system ensures that only authorized users can access the encrypted data, while the storage server handles the encrypted segments without needing to decrypt them. This method is particularly useful in cloud storage environments where data privacy and selective access are critical. The invention improves upon existing systems by providing a more granular and secure way to manage encrypted data, reducing the risk of unauthorized access while maintaining usability.
16. The method of claim 12 wherein using the data storage server comprises using the data storage server to communicate the portion of the encrypted data to the first user device based upon an authentication with the first user device.
This invention relates to secure data storage and retrieval systems, specifically addressing challenges in authenticated access to encrypted data. The system involves a data storage server that securely stores encrypted data and selectively communicates portions of this data to authorized user devices. The method includes encrypting data, storing the encrypted data on the server, and retrieving a portion of the encrypted data for a first user device. The retrieval process is contingent upon successful authentication of the first user device with the data storage server, ensuring that only authorized users can access the encrypted data. The authentication mechanism verifies the identity of the user device before granting access, enhancing security by preventing unauthorized data retrieval. The system may also involve additional steps such as decrypting the retrieved data on the user device or further processing the encrypted data before communication. The overall approach ensures secure and controlled access to encrypted data, mitigating risks of unauthorized access or data breaches.
17. The method of claim 12 wherein using the data storage server comprises using the data storage server to communicate the access code to the second user device based upon an authentication with the second user device.
A system and method for secure data access control involves a data storage server that manages access to stored data using access codes. The method includes generating an access code for a first user device, where the access code is associated with specific data stored on the server. The access code is then communicated to a second user device, allowing the second user device to request and receive the associated data from the server. The communication of the access code to the second user device is conditioned on successful authentication of the second user device with the data storage server. This ensures that only authorized devices can retrieve the data linked to the access code. The system may also include a key management server that generates and manages cryptographic keys used to encrypt and decrypt the data, ensuring secure transmission and storage. The access code may be a one-time-use code or a time-limited code to enhance security. The method further includes verifying the access code before granting access to the requested data, preventing unauthorized access. This approach provides a secure and controlled way to share data between devices while maintaining data integrity and confidentiality.
18. A non-transitory computer readable medium for decrypting encrypted data in a system comprising a first user device, a second user device, and a data storage server coupled to the first and second user devices and configured to store encrypted data in a server memory, the non-transitory computer readable medium comprising computer executable instructions for causing a processor of the data storage server to perform operations comprising: communicating a portion of the encrypted data to the first user device to cause the first user device to display on a first device display a visual representation of the portion of the encrypted data; generating an access code for decrypting the portion of the encrypted data; and communicating the access code to the second user device to cause the second user device to, upon acquisition of the visual representation of the portion of the encrypted data from the first device display of the first user device, obtain the portion of the encrypted data, decrypt the portion of the encrypted data based upon the access code and the visual representation and display the decrypted portion of the encrypted data on a second device display.
This invention relates to secure data decryption in a multi-device system. The system includes a first user device, a second user device, and a data storage server that stores encrypted data. The invention addresses the challenge of securely sharing and decrypting data between devices without exposing decryption keys or sensitive information during transmission. The data storage server communicates a portion of encrypted data to the first user device, which displays a visual representation of that portion. The server then generates an access code for decrypting the data and sends it to the second user device. The second user device captures the visual representation from the first device's display, uses the access code and the visual representation to decrypt the encrypted portion, and displays the decrypted data. This method ensures that decryption relies on both the access code and the visual representation, enhancing security by distributing the decryption process across multiple devices and inputs. The approach prevents unauthorized access by requiring physical interaction between devices and avoids transmitting decryption keys directly over networks.
19. The non-transitory computer readable medium of claim 18 wherein the first user device has a unique device identifier associated therewith; wherein the second user device decrypts the portion of the encrypted data based upon the unique device identifier; and wherein the operations comprise communicating the unique device identifier to the second user device.
This invention relates to secure data sharing between user devices using encryption and unique device identifiers. The problem addressed is ensuring that encrypted data can only be decrypted by authorized devices, preventing unauthorized access. The system involves a first user device that encrypts data and a second user device that decrypts it. The first device generates encrypted data, where a portion of the data is encrypted using a key derived from a unique device identifier of the second device. The second device, upon receiving the encrypted data, decrypts the portion using its own unique identifier. The first device communicates this identifier to the second device to enable decryption. The unique device identifier ensures that only the intended recipient can decrypt the data, enhancing security. The system may also include additional operations such as generating the unique identifier, storing it, and using it to derive decryption keys. The encryption and decryption processes may involve symmetric or asymmetric cryptographic techniques, depending on the implementation. This approach is useful in scenarios where secure communication between devices is required, such as in messaging apps, file-sharing systems, or IoT device interactions.
20. The non-transitory computer readable medium of claim 18 wherein the encrypted data comprises a plurality of encrypted data files; and wherein the operations comprise communicating a portion of a given one of the plurality of encrypted data files to the first user device.
This invention relates to secure data storage and retrieval systems, specifically addressing challenges in managing encrypted data files across multiple user devices. The system involves a non-transitory computer-readable medium storing instructions that, when executed, perform operations for handling encrypted data. The encrypted data consists of multiple encrypted data files, and the operations include selectively communicating a portion of a specific encrypted data file to a first user device. This selective communication allows for efficient and secure access to encrypted data without transferring entire files, reducing bandwidth usage and improving performance. The system may also include mechanisms for decrypting the communicated portion at the user device, ensuring that only authorized users can access the data. The operations may further involve verifying user permissions before transmitting the encrypted data portion, enhancing security. The invention is particularly useful in cloud storage, distributed file systems, or any environment where encrypted data must be securely shared among multiple devices while minimizing data transfer overhead.
Unknown
September 22, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.